{"id":13844736,"url":"https://github.com/triat/terraform-security-scan","last_synced_at":"2026-01-16T02:58:51.541Z","repository":{"id":38080480,"uuid":"221879499","full_name":"triat/terraform-security-scan","owner":"triat","description":"Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec","archived":false,"fork":false,"pushed_at":"2023-09-11T14:31:27.000Z","size":42,"stargazers_count":110,"open_issues_count":5,"forks_count":30,"subscribers_count":4,"default_branch":"master","last_synced_at":"2024-08-05T17:43:00.158Z","etag":null,"topics":["actions","aws","azure","ci","compliance","google-cloud-platform","hacktoberfest","scanner","security","static-analysis","terraform","tfsec"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/triat.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-11-15T08:30:53.000Z","updated_at":"2024-02-18T21:36:57.000Z","dependencies_parsed_at":"2023-02-12T21:00:16.833Z","dependency_job_id":null,"html_url":"https://github.com/triat/terraform-security-scan","commit_stats":{"total_commits":47,"total_committers":14,"mean_commits":3.357142857142857,"dds":"0.36170212765957444","last_synced_commit":"a320d9cad25d4a0443030d59e403c29a6166b7ab"},"previous_names":[],"tags_count":22,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/triat%2Fterraform-security-scan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/triat%2Fterraform-security-scan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/triat%2Fterraform-security-scan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/triat%2Fterraform-security-scan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/triat","download_url":"https://codeload.github.com/triat/terraform-security-scan/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225772736,"owners_count":17521880,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["actions","aws","azure","ci","compliance","google-cloud-platform","hacktoberfest","scanner","security","static-analysis","terraform","tfsec"],"created_at":"2024-08-04T17:02:54.429Z","updated_at":"2026-01-16T02:58:51.532Z","avatar_url":"https://github.com/triat.png","language":"Shell","funding_links":[],"categories":["Shell (473)","Shell"],"sub_categories":[],"readme":"![Master CI](https://github.com/triat/terraform-security-scan/workflows/Master%20CI/badge.svg?branch=master)\n# Terraform security check action\n\nThis action runs https://github.com/tfsec/tfsec on `$GITHUB_WORKSPACE`. This is a security check on your terraform repository.\n\nThe action requires the https://github.com/actions/checkout before to download the content of your repo inside the docker.\n\n## Inputs\n\n* `tfsec_actions_comment` - (Optional) Whether or not to comment on GitHub pull requests. Defaults to `true`.\n* `tfsec_actions_working_dir` - (Optional) Terraform working directory location. Defaults to `'.'`.\n* `tfsec_exclude` - (Optional) Provide checks via `,` without space to exclude from run. No default\n* `tfsec_version` - (Optional) Specify the version of tfsec to install. Defaults to the latest\n* `tfsec_output_format` - (Optional) The output format: default, json, csv, checkstyle, junit, sarif (check `tfsec` for an extensive list)\n* `tfsec_output_file` - (Optional) The name of the output file\n    \n## Outputs\n\nNone\n\n## Example usage\n\n```yaml\nsteps:\n  - uses: actions/checkout@v2\n  - uses: triat/terraform-security-scan@v3\n```\nThe above example uses a tagged version (`v3`), you can also opt to use any of the released version.\n\nTo allow the action to add a comment to a PR when it fails you need to append the `GITHUB_TOKEN` variable to the tfsec action:\n\n```yaml\n  env:\n    GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n```\n\nFull example:\n\n```yaml\njobs:\n  tfsec:\n    name: tfsec\n    runs-on: ubuntu-latest\n    steps:\n      - name: Checkout\n        uses: actions/checkout@v2\n      - name: Terraform security scan\n        uses: triat/terraform-security-scan@v3.0.0\n        env:\n          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftriat%2Fterraform-security-scan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftriat%2Fterraform-security-scan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftriat%2Fterraform-security-scan/lists"}